48ed2a2c1071fa47afc22a0ce5564363_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

48ed2a2c1071fa47afc22a0ce5564363_JaffaCakes118
Size

412KB
MD5

48ed2a2c1071fa47afc22a0ce5564363
SHA1

20f922ead007a9a0569dbdfedb837af043c0ae50
SHA256

df390553688ac435aeb0ad2bdf21a71a8c71883c135fcfe50b7b19046a43733a
SHA512

98fac944a6604dc560b0a7c6c0d2cd777b60455d96d9e9e5cdc8e4c4906a13b79ca50be0d72fa01586e4bab0ac5054f15f77b1af456800b5e463b532d61c2aee
SSDEEP

6144:sr6IQ8u9A6OsAtINAyx6+WedvddTJSGy/VRvM:spQ8cOsVJ9WQmv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48ed2a2c1071fa47afc22a0ce5564363_JaffaCakes118

Files

48ed2a2c1071fa47afc22a0ce5564363_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3bfd0d96a4fe39c2161d53bed1858ace

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragAcceptFiles
Shell_NotifyIconA
DragFinish
DragQueryFileA
SHGetSpecialFolderPathA

kernel32

GetProcessHeap
ExitProcess
HeapAlloc
HeapReAlloc
HeapFree
IsBadReadPtr
CreateDirectoryA
WriteFile
CreateFileA
MultiByteToWideChar
WideCharToMultiByte
GetUserDefaultLCID
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
FormatMessageA
WaitForSingleObject
CreateProcessA
GetStartupInfoA
LCMapStringA
FlushFileBuffers
SetStdHandle
LCMapStringW
LocalAlloc
GetStringTypeA
SetFilePointer
InterlockedIncrement
InterlockedDecrement
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
VirtualAlloc
RaiseException
GetProcAddress
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetLastError
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetVersion
GetCommandLineA
GetCurrentThreadId
LocalFree
lstrcpynA
RtlMoveMemory
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
CloseHandle
CreateThread
InitializeCriticalSection
WinExec
GetStringTypeW

user32

SetMenuItemInfoA
SetMenuItemBitmaps
SetMenuDefaultItem
wsprintfA
CheckMenuItem
RemoveMenu
MenuItemFromPoint
GetMenuDefaultItem
GetMenuInfo
GetMenuState
GetMenuItemRect
GetMenuItemInfoA
GetMenuStringA
TrackPopupMenu
SetForegroundWindow
CheckMenuRadioItem
GetSubMenu
SetMenuInfo
InsertMenuA
GetMenuItemCount
AppendMenuA
DestroyMenu
LoadIconA
CopyImage
CopyIcon
GetMessageA
IsWindow
TranslateAcceleratorA
IsDialogMessageA
TranslateMessage
DispatchMessageA
DestroyIcon
LoadMenuA
GetSystemMenu
CreatePopupMenu
CreateMenu
DrawTextA
GetDialogBaseUnits
SendDlgItemMessageA
SetDlgItemTextA
GetDlgItemTextA
SetDlgItemInt
GetDlgItemInt
CreateDialogParamA
DialogBoxParamA
RegisterClassExA
GetClassInfoExA
RegisterWindowMessageA
DrawMenuBar
SetMenu
GetMenu
GetSystemMetrics
IsZoomed
IsIconic
GetSysColor
FillRect
SetClassLongA
SetWindowRgn
RemovePropA
GetPropA
SetPropA
MessageBoxA
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
EnableWindow
IsWindowEnabled
ShowWindow
IsWindowVisible
SetParent
PostMessageA
SetWindowPos
MoveWindow
ScreenToClient
GetParent
UpdateWindow
ValidateRect
InvalidateRect
GetWindowRect
GetFocus
SetFocus
GetClassNameA
GetDlgItem
GetWindowLongA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
UnhookWindowsHookEx
SetWindowLongA
TrackMouseEvent
EndPaint
BeginPaint
SetCursor
DefMDIChildProcA
DestroyWindow
EndDialog
GetClientRect
DefWindowProcA
GetAsyncKeyState
CallWindowProcA
SendMessageA
PostQuitMessage
GetMenuItemID

gdi32

CreateFontA
DeleteObject
GetStockObject
CreateCompatibleDC
SelectObject
BitBlt
FrameRgn
SetBkMode
SetTextColor
FillRgn
CreateCompatibleBitmap
CreateRoundRectRgn
CreatePatternBrush
CreateSolidBrush
StretchBlt
GetObjectA
DeleteDC

ole32

CLSIDFromProgID
CoCreateInstance
OleRun
CoUninitialize
CoInitialize
CLSIDFromString
CreateStreamOnHGlobal

wininet

DeleteUrlCacheEntryA

oleaut32

SafeArrayGetElement
OleLoadPicture
VarR8FromCy
VarR8FromBool
LoadTypeLi
LHashValOfNameSys
RegisterTypeLi
SafeArrayCreate
SysAllocString
VariantClear
SafeArrayDestroy
SafeArrayUnaccessData
SafeArrayAccessData
VariantInit
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetDim
VariantChangeType

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 184KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3bfd0d96a4fe39c2161d53bed1858ace

Headers

File Characteristics

Imports

shell32

kernel32

user32

gdi32

ole32

wininet

oleaut32

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 184KB - Virtual size: 235KB

.rsrc Size: 112KB - Virtual size: 111KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 184KB - Virtual size: 235KB

.rsrc
Size: 112KB - Virtual size: 111KB